Hey Experts -\n\nI am having trouble figuring out how to set up a simple Pix-to-Pix VPN\n(both 501's with 6.3 and 3DES). I have a co-lo with one PIX, and my\noffice with the other. Each PIX has its own LAN address.\n\nCo-Lo: 10.1.1.x (fixed external IP)\nOffice: 10.1.0.x (dynamic external IP)\n\nEach PIX acts as a gateway for its own LAN and can connect its\nrespective LAN to the web without any trouble at all.\n\nWhat I would REALLY like to do is build a 3DES VPN tunnel between these\nPIXes, and be able to transparently ping hosts on the peer's LAN as if\nthey were all local. In other words, I would like to be able to ping\n10.1.1.10 from the office LAN and get responses back as if it was all\non the local LAN, ya know?\n\nObviously, ICMP is not the only thing I need, but you get the idea -\nthe routing has to just WORK. Simultaneously, each PIX should route\ntraffic NOT destined for its peer's LAN directly to the Internet.\n\nIs this possible? If so, is anybody willing to give me a 5 minute\nlesson on how to set it up? Please note that the office PIX has a\nDYNAMIC routable address. Also, you should know that the co-lo PIX\nalready has a PPTP VPN set up on it that works perfectly for SOHO users\nof our network. Man, it would be great if I could use the PDM to\nconfigure it all.\n\nThanks in advance for your help!